$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/_JuAEONSvSqMKwI0vSFaW8-iKcE.roa File: _JuAEONSvSqMKwI0vSFaW8-iKcE.roa (raw, json) Hash identifier: oL9rtmAIl8S5vY/QSQEa5o854SPOAumYFWe9CGIRxZA= Subject key identifier: FC:9B:80:10:E3:52:BD:2A:8C:2B:02:34:BD:21:5A:5B:CF:A2:29:C1 Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Certificate serial: 127A Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/_JuAEONSvSqMKwI0vSFaW8-iKcE.roa Signing time: Fri 22 Aug 2025 08:49:23 +0000 ROA not before: Fri 22 Aug 2025 08:49:23 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 17809 IP address blocks: 113.61.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4730 (0x127a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6 Validity Not Before: Aug 22 08:49:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FC9B8010E352BD2A8C2B0234BD215A5BCFA229C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:67:2e:18:95:b3:eb:d0:10:16:6b:56:7b:8c: 44:50:69:df:7a:1a:75:ad:d2:81:e0:d0:eb:84:fb: da:2e:13:d9:e3:f8:e1:e1:08:23:55:2f:86:75:be: 2b:5b:54:ec:4c:b8:c3:59:8b:d5:ee:0b:32:a0:f7: 2b:a8:ed:c5:cd:77:eb:3f:4d:da:34:2b:b6:53:2c: 31:e7:78:f0:9f:62:1b:5d:e1:52:f4:45:8e:3f:14: 1a:7d:48:e1:ed:ec:2f:d7:fa:4b:58:14:b3:bc:6e: 2a:ad:9b:d5:a4:f6:c1:9d:fb:82:dd:fe:b0:50:3f: 7d:4f:3c:0e:37:d1:ed:4e:98:a8:d4:de:77:ad:ee: 75:4c:e9:a2:b1:4c:e5:02:68:28:2f:40:5a:09:84: f8:58:60:a1:a3:a4:1a:74:53:5f:d5:46:d0:c5:d9: 16:2a:6e:35:cc:97:82:dd:f4:8e:ed:86:a8:45:b6: cf:e8:27:90:8c:09:20:4c:33:48:b2:fc:91:8e:99: e4:9b:bc:63:85:d6:76:03:de:10:01:1e:12:5a:2b: f3:35:99:60:92:24:0b:70:ab:5b:52:21:56:0b:77: fb:c8:0d:29:41:6c:cc:3e:be:42:04:f3:78:7e:bc: e3:3c:44:3b:6b:fb:23:00:b9:34:86:b7:cd:f7:14: 81:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:9B:80:10:E3:52:BD:2A:8C:2B:02:34:BD:21:5A:5B:CF:A2:29:C1 X509v3 Authority Key Identifier: keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/_JuAEONSvSqMKwI0vSFaW8-iKcE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.61.224.0/19 Signature Algorithm: sha256WithRSAEncryption 14:6f:46:62:63:ff:e5:80:e1:a1:e0:36:06:ad:4f:9b:97:2f: ee:43:36:c4:2a:1a:cd:7b:9a:dc:b2:b9:b0:39:fd:34:d1:84: 54:1a:aa:6b:43:96:92:f8:6b:c9:47:98:20:24:12:cb:1f:30: d6:de:46:09:84:81:ba:2f:83:38:07:ca:13:f2:9b:16:be:c2: ca:46:9a:c2:7a:aa:2e:82:1b:3a:96:17:2b:24:ab:23:82:f7: 12:9b:60:e1:ed:b7:b2:6c:9e:a9:b0:a3:6b:17:02:3f:a6:00: dd:40:a5:5c:ae:84:3f:c4:bc:5a:9c:3a:a1:ba:ac:2e:cf:70: e8:17:5e:d8:d1:3a:77:c7:3c:49:69:9d:a0:b2:46:27:f5:a1: 45:12:12:bb:81:7a:a3:ed:9d:63:01:be:a2:55:e3:2b:47:d0: 03:1a:bf:ac:b5:da:81:2e:ce:e4:93:ad:41:75:a8:cf:11:92: e2:7d:82:0d:6a:b9:9a:58:32:be:7c:09:be:9f:0c:3f:48:88: 87:57:02:b4:5c:b5:51:6b:1c:c9:a4:47:a8:dc:66:f4:21:34: 23:2b:a2:39:da:eb:f5:a9:69:80:1a:e8:aa:9b:eb:d9:25:b0: c0:30:4a:27:8a:5d:01:aa:da:33:17:da:cd:ea:49:96:00:a3: bb:a1:ba:9e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEnowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0 NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw ODQ5MjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZDOUI4MDEwRTM1MkJE MkE4QzJCMDIzNEJEMjE1QTVCQ0ZBMjI5QzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSZy4YlbPr0BAWa1Z7jERQad96GnWt0oHg0OuE+9ouE9nj+OHh CCNVL4Z1vitbVOxMuMNZi9XuCzKg9yuo7cXNd+s/Tdo0K7ZTLDHnePCfYhtd4VL0 RY4/FBp9SOHt7C/X+ktYFLO8biqtm9Wk9sGd+4Ld/rBQP31PPA430e1OmKjU3net 7nVM6aKxTOUCaCgvQFoJhPhYYKGjpBp0U1/VRtDF2RYqbjXMl4Ld9I7thqhFts/o J5CMCSBMM0iy/JGOmeSbvGOF1nYD3hABHhJaK/M1mWCSJAtwq1tSIVYLd/vIDSlB bMw+vkIE83h+vOM8RDtr+yMAuTSGt833FIH3AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU/JuAEONSvSqMKwI0vSFaW8+iKcEwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId 1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvX0p1QUVPTlN2U3FNS3dJMHZTRmFX OC1pS2NFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXE94DAN BgkqhkiG9w0BAQsFAAOCAQEAFG9GYmP/5YDhoeA2Bq1Pm5cv7kM2xCoazXua3LK5 sDn9NNGEVBqqa0OWkvhryUeYICQSyx8w1t5GCYSBui+DOAfKE/KbFr7Cykaawnqq LoIbOpYXKySrI4L3Eptg4e23smyeqbCjaxcCP6YA3UClXK6EP8S8Wpw6obqsLs9w 6Bde2NE6d8c8SWmdoLJGJ/WhRRISu4F6o+2dYwG+olXjK0fQAxq/rLXagS7O5JOt QXWozxGS4n2CDWq5mlgyvnwJvp8MP0iIh1cCtFy1UWscyaRHqNxm9CE0IyuiOdrr 9alpgBroqpvr2SWwwDBKJ4pdAaraMxfazepJlgCju6G6ng== -----END CERTIFICATE-----Generated at Sun Aug 24 09:16:27 2025 by rpki-client